The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

After a year of revisions and six meetings, German Village project goes up for a vote

A developer will finally see if a multifamily project can be built in German Village after a year-long process.

Second Thomas Dambo troll installation coming to Southeast Wisconsin

Preview this article 1 min The large wooden troll sculptures by the Danish artist are viewed as a tourism draw. Thursday, May ...
Waterloo-Cedar Falls Courier

Veridian Credit Union will hold shred day May 16 in Cedar Falls

Veridian Credit Union will host a community shred day from 9 a.m. to noon May 16 at its Cedar Falls office at 6525 Chancellor ...
InfoWorld

SAP npm package attack highlights risks in developer tools and CI/CD pipelines

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...
La Crosse Tribune

Hwy. 16 lane closures expected for La Crosse water pipe installation

La Crosse is preparing to install 2.2 miles of water piping along Highway 16, pending approval from the state Public Service ...
TechJuice

SAP npm Packages Compromised in Mini Shai-Hulud Supply Chain Attack

Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.

The never-ending supply chain attacks worm into SAP npm packages, other dev tools

Attackers infected all versions with the same credential-stealing malware that, on Wednesday, poisoned multiple npm packages ...
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
Morning Overview on MSN

Malicious open-source packages have surged 73% in 2026 according to new research

Every time a developer types npm install, they are placing a bet that the package they are pulling into their project is not ...
The Caledonian-Record

Port Houston Awarded $48 million MARAD Grant for Bayport Terminal Expansion and Enhancements

Port Houston has been awarded a $48 million federal grant to support the construction of a new container yard and the ...

Mysterious block of ice appears in seaside town

A large block of ice that mysteriously appeared in a seaside town has led to speculation online about what it is. Bournemouth ...